![]() |
VBPlaza (Can i repost?)
Hello,
I have been talking with the creator from vbPlaza, and he has fixed the problem with vbplaza. Quote:
Mark |
If it is OK with the author you are free to do so
|
.. but you will have to offer the support for this version, as he is stating he have not time to do it...
|
It would be best to give support. But I think there will be enough supporters in the thread.
But I would still go with Nexia's POINTS system if I was to choose. |
Why doesn't the author just send a staff member the new files? That way someone can upload the attachment to the existing thread and move it back into the public forums.
No point in losing all the existing answers in the thread. |
I haven't been keeping up lately, but how do we know CMX actually said that?
|
Quote:
|
I would like CMX to post in this thread to make sure this isnt a fake :)
|
We would need confirmation from the Author before allowing this - that would need to be a PM to staff from his account (or a public post).
|
Quote:
|
Quote:
|
Its just, if he doesnt have time to post his releases himself, how can he have time to code?
|
The reason I didnt have time to post yesterday was my sister in law in over here from Germany and we were doing some stuff :)
Also I havent had time to look at v1.5.8 because I've been working on v2.0 vbPlaza for a while now. It's shaping up nicely and I hope to have a beta out by the end of the month. The entire script has been re-written and uses the "vB's" clean system as well to clean all variables, not just ones that go into the database. As well as a very nice method to add items to the store that do PHP code, but do not require any .PHP files to be uploaded. Among other things like over 190 items to purchase from the vbPlaza. It will be much better, but I dont anticipate any time on coding it while my in-laws are here for a couple weeks. As far as the "updated" file for v1.5.81 with the strip_tags changes, I will send it to a mod here to put on the original thread as I think that would be best until I can get v2.0 off the ground. It seems kind of mute for me to support the v1.x series too much when v2.0 is so close. -CMX |
There ya go, "The Man" has spoken.:up:
|
Quote:
|
Quote:
|
The "fixed" version has been checked by the staff who examined the original exploits and they have not been found to be fixed. Therefore we have had to remove the new version.
|
Quote:
|
Aw dammit...
...and besides CMX...when was the last time you visited your vbplaza.com site?? It's being spammed to high hell... |
Hey CMX any chance you can have the VB.org guys send you a list of the exploits and then you can pass them onto another coder who would be willing to at least fix those exploits for this version while you are working on 2.0?
|
Quote:
Real good idea. How about CM? At least until 2.0 comes out this will release allot of your stress I'm sure. And keep people happy for now. |
removed...
|
Given that the exploits were confirmed to be present in the 1.5.81 file by a member of Staff, advertising the fact that you have it installed on your forums isn't the wisest course of action, IMO.
|
removed
|
Quote:
Anywho, i speak on behalf of all of us when i say, This sucks. |
Quote:
If the conversation was true how CMX said that was the fix, and it dosen't fix it ... Interesting. |
I'm pretty confident if you disable a couple of the usertitle functions and the PM sending functions in each of the action files and the main functions file this will be safe. I will take the chance. Someone let me know if I am wrong.
|
Quote:
|
Quote:
He used part of the code you offer at your site. You tell everyone that thats save.... *Cough* |
I dont understand what you just said Barbie, I mean Bratz! :P (I gota pick up Bratz and barbie dolls at my job in Toy section of Target...)
|
PMSL......now that was funny :rolleyes::D
Quote:
|
Learn me! I still don get it!!!
|
now what. wish they fixed it
|
All times are GMT. The time now is 10:29 PM. |
Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
![]() |
|
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|